{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2025-50669", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-04-08T17:47:29.625Z", "dateReserved": "2025-06-16T00:00:00.000Z", "datePublished": "2026-04-08T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-08T17:47:29.625Z"}, "descriptions": [{"lang": "en", "value": "A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 and DI-8003G 19.12.10A1 due to improper handling of the wan_ping parameter in the /wan_ping.asp endpoint."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://www.dlink.com/en/security-bulletin/"}, {"url": "https://github.com/xiaotea/iot-vulnerability-collection/blob/main/README.md"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}}, "dataVersion": "5.2"}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 and DI-8003G 19.12.10A1 due to improper handling of the wan_ping parameter in the /wan_ping.asp endpoint."}], "id": "CVE-2025-50669", "lastModified": "2026-04-08T21:26:13.410", "metrics": {}, "published": "2026-04-08T19:24:17.580", "references": [{"source": "cve@mitre.org", "url": "https://github.com/xiaotea/iot-vulnerability-collection/blob/main/README.md"}, {"source": "cve@mitre.org", "url": "https://www.dlink.com/en/security-bulletin/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Awaiting Analysis"}

{}

{"analysis": {"en": {"generated_at": "2026-04-08T19:38:25.871574+00:00", "value": {"mitigation_remediation": ["Apply the latest firmware update released by D\u2011Link for the DI\u20118003 and DI\u20118003G devices.", "If an update cannot be applied immediately, disable the WAN ping feature in the router\u2019s web interface to remove the vulnerable entry point.", "Configure firewall rules to block external access to the /wan_ping.asp endpoint or to the router\u2019s web management interface.", "Monitor the device for unusual traffic patterns or repeated failure logs that might indicate exploitation attempts."], "summary": {"action": "Immediate Patch", "impact": "Remote Code Execution and Denial of Service"}, "threat_synthesis": {"affected_systems": "The defect affects D\u2011Link DI\u20118003 running firmware 16.07.26A1 and D\u2011Link DI\u20118003G running firmware 19.12.10A1. These models expose the vulnerable endpoint through the web interface used for managing WAN ping settings.", "description_and_impact": "A buffer overflow occurs when the wan_ping parameter is processed in the /wan_ping.asp web endpoint. This flaw can allow an attacker to supply specially crafted input that overflows an internal buffer, potentially leading to arbitrary code execution or a crash that disrupts router operation. The weakness is a classic buffer overflow vulnerability.", "risk_and_exploitability": "The CVSS score and EPSS rating are not available, and the vulnerability is not listed in the CISA KEV catalog. However, the likely attack vector is remote via the publicly accessible /wan_ping.asp page, meaning an external adversary could trigger the flaw with an HTTP request. Given the nature of the vulnerability, successful exploitation could compromise confidentiality, integrity, or availability of the device."}}}}, "created": "2026-04-08T19:44:31.593444+00:00", "title": "Buffer Overflow in D\u2011Link DI\u20118003/DI\u20118003G via Wan_Ping Parameter", "updated": "2026-04-08T19:44:31.593470+00:00", "vendors": [], "weaknesses": ["CWE-120"]}